Show filters
5 Total Results
Displaying 1-5 of 5
Sort by:
Attacker Value
Unknown
CVE-2018-1044
Disclosure Date: January 22, 2018 (last updated November 26, 2024)
In Moodle 3.x, quiz web services allow students to see quiz results when it is prohibited in the settings.
0
Attacker Value
Unknown
CVE-2018-1042
Disclosure Date: January 22, 2018 (last updated November 26, 2024)
Moodle 3.x has Server Side Request Forgery in the filepicker.
0
Attacker Value
Unknown
CVE-2018-1043
Disclosure Date: January 22, 2018 (last updated November 26, 2024)
In Moodle 3.x, the setting for blocked hosts list can be bypassed with multiple A record hostnames.
0
Attacker Value
Unknown
CVE-2018-1045
Disclosure Date: January 22, 2018 (last updated November 26, 2024)
In Moodle 3.x, there is XSS via a calendar event name.
0
Attacker Value
Unknown
CVE-2017-12156
Disclosure Date: September 18, 2017 (last updated November 26, 2024)
Moodle 3.x has XSS in the contact form on the "non-respondents" page in non-anonymous feedback.
0
